Attending the last of this year’s ‘IT Matters’ forums, you will discover how biometric, legally binding electronic signatures and authentication can significantly improve Customer/Client experience, transform your everyday business processes, reduce costs, exploit revenue growth, boost security and fully comply with the EU eIDAS (electronic IDentification, Authentication and trust Services) Regulation.

Aldo Lo Castro, director of Aliaslab UK, will shed light onto some of the ‘newer-than-new’ developments in secure digital transformation, monitoring new regulations, paper process can from now on be replaced by electronic Signature and paperless & automatic document management. Reducing costs, time, and being more efficient, digital transformation will improve the way we work!

PSD2 – 2015/2366 / UE

PSD2 the long awaited successor of the 1rst Payment Services Directive from 2007, aims to harmonize (as eIDAS do) the European retail payments market, which is very much fragmented along national borders, and foster the adoption of innovative, easy-to-use and secure payment & authentication schemes.

EBA defines the SCA, from the base of the traditional concept of SA, “Strong customer authentication” is defined as “an authentication based on the use of two or more elements categorized as knowledge (something only the user knows), possession (something only the user possesses) and inherence (something the user is) that are independent, in that the breach of one does not compromise the reliability of the others”


And it must be applied by Payment Service Providers (PSPs) when “strong customer authentication where the payer:(a) accesses its payment account online; (b) initiates an electronic payment transaction; [or] (c) carries out any action, through a remote channel, which may imply a risk of payment fraud or other abuses” and “Strong Customer Authentication could include elements linking the authentication to a specific amount and payee. The technology solution enabling the strong authentication data and transaction data to be linked should be tamper resistant”.

For SecurCall Out-of-Band:

  1. knowledge (Username + password);
  2. possession (your phone – MSISDN that identifies the calling number);
  3. and inherence (the voice recognition during the call – “my voice is my identity”).

During the call to link “the authentication to a specific amount and payee” a voice prompt the Operation & the amount to pay”

For SecurCall SmartOtp:

  1. knowledge (Username + password);
  2. possession (your phone – the OTP is crypted and send to the phone that holds the encryption key);
  3. and inherence (the FingerPrint -touchID- or the voice recognition “my voice is my identity”).

The transaction description and the “specific amount and payee” is embedded in the notification/QrCode send to the Phone (the only device that can decrypt the description).

An additional security layer can be the FingerVein (Hitachi) Strong Authentication Device. It can be used for “important transfer” to secure the even more the transaction.  


Enrolment for and provision of authentication tools and/or payment-related software delivered to the customer should ful l the following requirements.

  1. Trusted environment – The related procedures should be carried out in a safe and trusted environment while taking into account possible risks arising from devices that are not under the PSP’s control.
  2. Secure Delivery of Credentials – Effective and secure procedures should be in place for the delivery of personalised security credentials, payment-related software and all internet payment-related personalised devices. Software delivered via the internet should also be digitally signed by the PSP to allow the customer to verify its authenticity and that it has not been tampered with.
  3. Specific StandAlone Registration –  For card transactions, the customer should have the option to register for strong authentication independently of a specific internet purchase. Where activation during online shopping is offered, this should be done by re-directing the customer to a safe and trusted environment.

After eIDAS regulation, a further step towards unification of the processes at the European level.



Research Sources


(1) nalversionafterpc201301en.pdf

BlocKChain Add-on

The authorisation data and the authentication transaction data can be entered into a BlockChain to ensure the immutability and the impossibility of tampering.



At AliasLab we offer cutting-edge solutions to help prepare companies for the eIDAS digital transformation. In partnership with Thales, we offer solutions that meet the following requirements defined by eIDAS:

  • Security of data used in creating an electronic signature
  • Unique connection between the data used in creating an electronic signature creation and the signature itself
  • Protect the signature data against forgery
  • Protect the data used in creating an electronic signature against illegitimate use by others

Thales HSMs act as the root of trust for AliasLab’s IDSign Signature engine, allowing the creation and management of the cryptographic keys used to create electronic signatures. This enables us to provide secure products and services that meet the new eIDAS cross-border standards.

The digital transformation brought about by eIDAS is well underway, and many kinds of companies, public and private, in all sectors. And AliasLab is part of it.

IDSign’s Signature Engine, in conjunction with the use of Thales’ HSM as a cryptographic module for the generation and protection of the data used in creating a signature, comprise a compliant QSCD according to the A-SIT-VI-16-048 Conformity Certificate as a SSCD -Secure Signature Creation Device according to Art. 51 E-IDAS Regulation UE Nr. 910/2014 – Art. 3, Par.4 -Annex III D.E. 1993/93 / EC.

Thales – Thales e-Security is a leading global provider of data protection solutions with more than 40 years experience securing the world’s most sensitive information. Our customers—businesses, governments, and technology vendors with a broad range of challenges—use Thales products and services to improve the security of applications that rely on encryption and digital signatures. By protecting the confidentiality, integrity, and availability of sensitive information that flows through today’s traditional, virtualized, and cloud-based infrastructures, Thales is helping organizations reduce risk, demonstrate compliance, enhance agility, and pursue strategic goals with greater confidence.

Thales Link



Fuel your eIDAS transformation with AliasLab solutions,  

Partnering with the world’s leading technology providers, AliasLab’s primary objectives are always focused on meeting the demanding requirements of the customers. AliasLab has pursued eIDAS compliance by obtaining a conformity declaration by A-SIT for its (Q)SSCS application.

Alessio Lepre, CEO, and Aldo Lo Castro, Head of R&D AliasLab UK will talk about “Fuel your eIDAS transformation with Aliaslab solutions”, EMEA Channel Partner Conference. Budapest 17-20 October 2016.

To Register & have information:;jsessionid=RPORk-an7zhxl9qJXHcFALxI.gl2?surveyName=Default&pg=presentation&locale=1&_TIM_=R40092069

Thales e-Security is a leading global provider of data protection solutions with more than 40 years experience securing the world’s most sensitive information. Our customers—businesses, governments, and technology vendors with a broad range of challenges—use Thales products and services to improve the security of applications that rely on encryption and digital signatures. By protecting the confidentiality, integrity, and availability of sensitive information that flows through today’s traditional, virtualized, and cloud-based infrastructures, Thales is helping organizations reduce risk, demonstrate compliance, enhance agility, and pursue strategic goals with greater confidence.


Innovation has never been so vibrant in financial services, giving birth to an impressive number of concepts and approaches!Through in-depth presentations and workshops moderated by the best-in-class, attendees will see how a number of leading financial institutions are achieving engagement across their business, not only remaining competitive, but also flourishing.

Aldo Lo Castro, Head of R & D Aliaslab S.p.A., will hold his speech, entitled “Designing innovative technologies in the field and biometric digital signature. Identification database on the blockchain”, on October 24 in the afternoon session.

BlockChain and signature. The application and development of the digital signature in different scenarios, beyond Biometrics and strong authentication. A new vision, a new adventure in UK. Aliaslab UK.


SecureCall can be used both by means of call to the toll-free number, or by means of QR Code.

The QR Code has the role guide in an automatic authentication procedure, in fact, this may contain, in addition to the toll free number, even the session OTP or the number of IBAN of the recipient (in the case of transaction). There is therefore no need to use the phone pad, but you just scan the QR Code with your enabled mobile (Enrolled).

We take for example the case of a generic login page.

The user accesses the portal by providing his username and password (something you know). Once logged into, the server in charge of managing the authentication process generates a QR Code (two-dimensional barcode) in which the OTP is stored in encrypted form to be used during the transaction; at this point the user scan with the camera of his mobile phone the QR Code (speaker and encrypted) using an application previously installed (something you have). The scan leads the user to his personal homepage . In this case there is no need to type in the phone number or enter the session OTP, but only use the QR code.

This implies an intuitive user experience and a more simple and fast procedure.


AliasLab, Business Partner of Wacom Europe GmbH, is present in SMAU 2014 (Milano). In this situation AliasLab focus the attention on IDSign Biometric: the modular solution for the electronic signature using Biometrical parameters.  IDSign : sign is easy, fast, safe, unique and legally valid.

IDSing Biometric - Wacom Partnership


Aliaslab and Wacom, a partnership that today can provide a graphometric signature system  of great quality, easy and efficient. For example AEW, a company that produces electricity exclusively from renewable sources and is actually a highly consolidated throughout South Tyrol, use the signature system.

A proof of this success in March 5, 2015 Soiel International describes in this way the experience.

“Quello che ci è piaciuto di questa soluzione è soprattutto la versatilità, in poco tempo, con l’aiuto di Wacom e di Aliaslab, siamo riusciti a implementare soluzioni diverse, sia su dispositivi fissi sia su dispositivi mobili, in maniera molto facile e semplice, impiegando poco tempo e raggiungendo la massima efficacia”.


30 years of success in continuous expansion in order to optimize solutions, innovate the market and invent the future.

Point of reference in the field of ITC, AliasLab, this year celebrates its thirtieth birthday.

The experience gained over the years has meant that the company has become one of the main forerunners of the national, and in recent years, also international IT development. During these years, AliasLab has shown a particular interest and skill towards market developments, able to capture the changes in the needs of its customers and so able to offer products and services always at the forefront.

Founded in 1984 in Mantua, under the name of Alias ​​Sas, AliasLab began to operate as a software house, aimed at a clientele of small and medium-sized enterprises located in northern Italy (Lombardy and Triveneto in particular). Thus, participating in the widespread use of the personal computer (first Apple, then Olivetti and IBM) as a tool for business management. In the late 80’s, AliasLab seized the opportunity offered by the Unix operating system and its derivatives to broaden its customer base and product range, especially in the manufacturing sector. To take advantage of new business opportunities that were looming as a result of market trends, the members expanded the internal structure and stipulated agreements of technical and commercial collaboration with leading technology partners operating at the time.

In 1995, when the Italian market opened its doors to the world of the Internet, the telecommunications industry began to acquire low-cost consistency trade. At that time, Aliasnet Srl was founded. It was designed to develop and then spread the Internet availability to companies, leaving the more confusing “private” market. Aliasnet Srl began to operate as a franchising ISP provider on behalf of the National ITnet of Genoa and later to expand, as much as possible, its field of operation. It then acquired shares in companies operating in various regions of the peninsula or affiliated with companies dedicated to specific projects for the spread of connectivity at the national level. At the end of the last century the operational business teams were as follows: Alias, the leader of the group, performed the “traditional” function of job development with a “turnkey” modality. It also operated as broker of computer equipment on behalf of all the other companies of the group, in commercial partnership with Cisco, HP, Oracle, Informix, Ingres and Microsoft.

Aliasnet was configured to operate in the context of high-tech “special projects”, which served as a container of different investments of autonomous companies with offices in Milan, Rome and Triveneto. Today Aliasnet is the group holding company. 2000 was the year of change, thanks to agreements with the industrial group Sapio, based in Monza and national leader in the production of oxygen, Alias was transformed into a limited company under the name of Aliaslab SpA. Meanwhile, Aliasnet established a contract with MTN, the second mobile operator in the Republic of South Africa; this contract aimed at the implementation of a software solution to converge Internet and telecommunication and to solve the problem of web access authentication. In the year 2000 in Milan, AliasLab formed a division that specialized in the area of ​​web publishing. In 2002, another division based in Caserta, was dedicated to the implementation of projects aimed at public administration. In 2004, in Castelfranco Veneto (TV) another branch was opened as a web media agency, with its own autonomous data center. In 2005, a branch in Slovakia opened.

In 2007 AliasLab acquired control of Elaide Srl, founded in 1996, a leading company in the field of secure communications via the Internet, with particular expertise in the field of authentication, integrity and non-repudiation by employing digital signatures. Elaide’s markets of choice were both the corporate market and the PAC/PAL market. In 2009, the constitution of AliasLab Extramoenia Srl marked the beginning of AliaLab’s expansion in international markets; this growth continued in 2010, with the birth of AliasLab do Brasil.

AliasLab market today has turned to banking, insurance, healthcare and higher education, in addition to the already existing markets of certification authorities, government, telecommunications, and to large companies. Its technical expertise offers a full suite of services relating to: electronic signatures (digital, extended, massive and remote), mPayment solutions, strong authentication, secure data transfer, Pec and Fidelity&Proximity marketing. Building on its thirty years of experience, and careful always to seize new market opportunities, AliasLab invests today in the search for new solutions to meet even the most demanding expectations and offer cutting-edge technological solutions.

The ability to adapt itself to all the changes of a dynamic environment and to leverage existing technology, in order to improve the user experience of its customers, is the secret that promises to carry AliasLab for another three decades of excellence.